GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 26,046
Composer 5,218
Erlang 40
GitHub Actions 40
Go 2,974
Maven 6,256
npm 4,621
NuGet 788
pip 4,317
Pub 12
RubyGems 984
Rust 1,131
Swift 49

Unreviewed advisories

All unreviewed 289,772

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

48 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Tanium addressed a local privilege escalation vulnerability in Tanium Server. Moderate Unreviewed

CVE-2025-15316 was published Feb 10, 2026

Tanium addressed a local privilege escalation vulnerability in Tanium Module Server. Moderate Unreviewed

CVE-2025-15315 was published Feb 10, 2026

Istio through 1.28.2 allows iptables rule injection for changing firewall behavior via the... Moderate Unreviewed

CVE-2026-23766 was published Jan 15, 2026

An Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')... Moderate Unreviewed

CVE-2025-66002 was published Jan 8, 2026

A flaw was found in libnbd. A malicious actor could exploit this by convincing libnbd to open a... Moderate Unreviewed

CVE-2025-14946 was published Dec 19, 2025

An improper neutralization of argument delimiters in a command vulnerability has been reported to... Moderate Unreviewed

CVE-2025-62847 was published Dec 16, 2025

Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release... Moderate Unreviewed

CVE-2025-36565 was published Oct 7, 2025

Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release... Moderate Unreviewed

CVE-2025-43905 was published Oct 7, 2025

An issue was discovered in Commvault before 11.36.60. A security vulnerability has been... Moderate Unreviewed

CVE-2025-57791 was published Aug 20, 2025

Improper neutralization of argument delimiters in a command ('Argument Injection') issue exists... Moderate Unreviewed

CVE-2025-24845 was published Feb 6, 2025

An argument injection vulnerability in the diagnose and import pac commands in WatchGuard... Moderate Unreviewed

CVE-2022-31749 was published Jan 28, 2025

A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated,... Moderate Unreviewed

CVE-2021-1484 was published Nov 15, 2024

A vulnerability in Cisco Nexus Dashboard Fabric Controller (NDFC), formerly Cisco Data Center... Moderate Unreviewed

CVE-2024-20444 was published Oct 2, 2024

The Relevanssi Live Ajax Search plugin for WordPress is vulnerable to argument injection in all... Moderate Unreviewed

CVE-2024-7573 was published Aug 28, 2024

A vulnerability in the Mitel 6800 Series, 6900 Series, and 6900w Series SIP Phones, including the... Moderate Unreviewed

CVE-2024-41711 was published Aug 13, 2024

A vulnerability in the Mitel 6800 Series, 6900 Series, and 6900w Series SIP Phones, including the... Moderate Unreviewed

CVE-2024-41710 was published Aug 12, 2024

A vulnerability on Mitel 6800 Series and 6900 Series SIP Phones, including 6970 Conference Unit,... Moderate Unreviewed

CVE-2024-31966 was published May 2, 2024

Argument injection in websphere_mq agent plugin in Checkmk 2.0.0, 2.1.0, <2.2.0p25 and <2.3.0b5... Moderate Unreviewed

CVE-2024-3367 was published Apr 16, 2024

aEnrich Technology a+HRD's functionality for downloading files using youtube-dl.exe does not... Moderate Unreviewed

CVE-2024-3775 was published Apr 15, 2024

A vulnerability in the web-based management interface of the Cisco WAP371 Wireless-AC/N Dual... Moderate Unreviewed

CVE-2024-20287 was published Jan 17, 2024

A vulnerability in the application CLI of Cisco Prime Infrastructure and Cisco Evolved... Moderate Unreviewed

CVE-2023-20260 was published Jan 17, 2024

An OS command injection vulnerability in the XML API of Palo Alto Networks PAN-OS software... Moderate Unreviewed

CVE-2023-6792 was published Dec 13, 2023

A vulnerability in the Edge Gateway component of Mitel MiVoice Connect through 19.3 SP3 (22.24... Moderate Unreviewed

CVE-2023-39287 was published Aug 26, 2023

A vulnerability in the Connect Mobility Router component of Mitel MiVoice Connect through 9.6... Moderate Unreviewed

CVE-2023-39288 was published Aug 26, 2023

An issue discovered in mccms 2.6.1 allows remote attackers to cause a denial of service via... Moderate Unreviewed

CVE-2023-26782 was published Apr 28, 2023

Previous12 Next

Previous 1 2 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

48 advisories